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DETAILED ACTION 

1 . This Office action is responsive to the Applicant's Amendment filed 07/23/2007. 
Claims 1-19 are presented for examination. 

Response to Arguments 

2. Applicant's arguments, see Amendment, filed 07/23/2007, with respect to the 
rejection(s) of claim(s) 1-4, 6-9, and 11-19 under 103 have been fully considered and 
are persuasive. Therefore, the rejection has been withdrawn. However, upon further 
consideration, a new ground(s) of rejection is made in view of Kung et al. (U.S. Patent 
6,889,321 B1). 

Claim Rejections - 35 USC § 103 

The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

3. Claims 1-4, 6-9, and 11-19 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Barkan (EP 0738085 A2) herein referred to as Barkan in view of 
Kung et al. (U.S. Patent 6,889,321 B1) herein referred to as Kung. 



Regarding on Claims 1 and 6, Barkan discloses a method for establishing a 
secure communication channel in an IP telephony network between a first and a second 
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user, wherein the first user and the second user are coupled to first and second 
telephony adapters, which in turn, are coupled to first and second gateway controllers, 
respectively, wherein the gateway controllers control user access to the IP telephony 
network, and wherein the telephony adapters encrypt and decrypt user information 
exchanged over the IP telephony network (Fig. 1), the method comprising: 

receiving a request at the first gateway controller (key distribution center 1 1) to 
establish a secure communication channel (secure communication link) between the 
first user (facility 1) and the second user (facility 3) (Fig. 1, col. 6, lines 38-40); 

Barkan explicitly does not disclose generating a secret key at the first gateway 
controller; distributing the secret key to the first and second telephony adapters over 
previously established secure connections; and establishing the secure communication 
channel between the first user and the second user by encrypting and decrypting 
information using the secret key. 

However, Kung explicitly discloses generating a secret key (encryption key/key 
1) at the first gateway controller (Figure 2, element 218 and Figure 7, element 706, col. 
33, lines 9-12); distributing the secret key to the first and second telephony adapters 
(Figure 7, elements 705 and 708/707) over previously established secure connections 
(encryption key(s) provide by the CM(s) 218 to the BRG(s) 300) (col. 33, lines 5-10); 
and establishing the secure communication channel between the first user and the 
second user by encrypting and decrypting information using the secret key (Figure 4, 
elements 106, 108, and 110, col. 33, lines 14-17). 
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Therefore, it would have been obvious to one of ordinary skill in the art at the 
time the invention was made to have combined Kung's invention with Barkan to include 
generating a secret key at the first gateway controller; distributing the secret key to the 
first and second telephony adapters over previously established secure connections; 
and establishing the secure communication channel between the first user and the 
second user by encrypting and decrypting information using the secret key. One of 
ordinary skill in the art would have been motivated to do so because it would provide 
secure communications in a broadband communication system as taught by Kung (col. 
1, lines 12-13). 

Regarding on Claim 2, Barkan and Kung disclose the limitations as discussed in 
Claim 1 above. Barkan further discloses wherein the step of generating comprises a 
step of generating a random number at the first gateway controller to be used as the 
secret key (col. 14, line 59 and col. 15, lines 1-5). 

Regarding on Claim 3, Barkan and Kung disclose the limitations as discussed in 
Claim 1 above. Barkan further discloses wherein the step of generating comprises a 
step of deriving the secret key at the first gateway controller (col. 15, lines 5-10), 
wherein the secret key is derived from a signaling key shared between the first 
telephony adapter and the first gateway controller (col. 15, lines 15-20). 
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Regarding on Claim 4, Barkan and Kung disclose the limitations as discussed in 
Claim 1 above. Barkan further discloses transmitting the secret key from the first 
gateway controller to the second gateway controller (col. 7, lines 45-55); transmitting the 
secret key from the second gateway controller to the second telephony adapter (col. 7, 
lines 45-50), transmitting the secret key from the first gateway controller to the first 
telephony adapter (col. 6, lines 35-40). 

Regarding on Claim 7, Barkan discloses a gateway controller for establishing a 
secure communication channel in an IP telephony network, the gateway controller 
coupled between a telephony adapter and a telephony network backbone (Fig. 1), the 
gateway controller (key distribution center) comprising: 

a key storage module (key management controller) coupled to the key creation 
module and having logic to store the secret key (col. 8, lines 15-20); and 

a message processor coupled to the key creation module and the key storage 
module (col. 8, lines 15-20), and having logic to process messages exchanged between 
the telephony adapter and the telephony network backbone (Fig. 1, element 111) (col. 
7, lines 51-54 and col. 14, lines 15-30), wherein the message processor further 
comprises: 

logic to receive a request to establish a secure communication channel between 
a first user and a second users the first user couple to the telephony adapter, the 
second user coupled to a remote telephony adapter (Fig. 1, col. 6, lines 38-40); 
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Barkan explicitly does not disclose a key creation module having logic to create a 
secret key; logic to distributed the secret key to the telephony adapters over previously 
established secure connections, whereby the secure communication channel between 
the first user and the second user may be established by encrypting and decrypting 
information using the secret key. 

However, Kung explicitly discloses a key creation module having logic to create a 
secret key (encryption key/key 1); logic to distributed the secret key to the telephony 
adapters over previously established secure connections (Figure 7, elements 705 and 
708/707) over previously established secure connections (encryption key(s) provide by 
the CM(s) 218 to the BRG(s) 300) (col. 33, lines 5-10); and whereby the secure 
communication channel between the first user and the second user may be established 
by encrypting and decrypting information using the secret key (Figure 4, elements 106, 
108, and 110, col. 33, lines 14-17). 

Therefore, it would have been obvious to one of ordinary skill in the art at the 
time the invention was made to have combined Kung's invention with Barkan to include 
a key creation module having logic to create a secret key; logic to distributed the secret 
key to the telephony adapters over previously established secure connections; whereby 
the secure communication channel between the first user and the second user may be 
established by encrypting and decrypting information using the secret key. One of 
ordinary skill in the art would have been motivated to do so because it would provide 
secure communications in a broadband communication system as taught by Kung (col. 
1, lines 12-13). 
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Regarding on Claim 8, Barkan and Kung disclose the limitations as discussed in 
Claim 7 above. Barkan further discloses wherein the key creation module has logic to 
generate a random number as the secret key (col. 14, line 59 and col. 15, lines 1-5). 

Regarding on Claim 9, Barkan and Kung disclose the limitations as discussed in 
Claim 7 above. Barkan further discloses wherein the key creation module has logic to 
derive the secret key from a signaling key shared with the telephony adapter (col. 8, 
lines 15-40). 

Regarding on Claim 11, Barkan discloses a system for providing encrypted 
communications in an IP telephony network, said system comprising: 

a first cable telephony adapter (facility 1 key management device) (col. 5, lines 
53-55); 

a first gateway controller (key distribution center 11) coupled with said first cable 
telephony adapter (col. 6, lines 25-30); 

a second cable telephony adapter (facility 3 key management device) (col. 5, 
lines 52-55); 

a second gateway controller (key distribution center 12) coupled with said second 
cable telephony adapter (col. 7, lines 45-50); 

a network coupled with both said first gateway controller and said second 
gateway controller so as to facilitate communications between said first cable telephony 
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adapter and said second cable telephony adapter wherein said communications are 
routed via said first gateway controller and said second gateway controller (Fig. 1, col. 
5, line 52 through col. 12, line 18). 

Barkan explicitly does not disclose wherein said first gateway controller 
comprises: a first key creation module configured to generate a secret key for 
distribution to both said first cable telephony adapter and said second cable telephony 
adapter for use in encrypted communications between said first cable telephony adapter 
and said second cable telephony adapter. 

However, Kung explicitly discloses wherein said first gateway controller 
comprises: a first key creation module configured to generate a secret key (encryption 
key/key 1) for distribution to both said first cable telephony adapter and said second 
cable telephony adapter for use in encrypted communications between said first cable 
telephony adapter and said second cable telephony adapter (Figure 7, elements 705 
and 708/707) over previously established secure connections (encryption key(s) provide 
by the CM(s) 218 to the BRG(s) 300) (col. 33, lines 5-10). 

Therefore, it would have been obvious to one of ordinary skill in the art at the 
time the invention was made to have combined Kung's invention with Barkan to include 
wherein said first gateway controller comprises: a first key creation module configured 
to generate a secret key for distribution to both said first cable telephony adapter and 
said second cable telephony adapter for use in encrypted communications between 
said first cable telephony adapter and said second cable telephony adapter. One of 
ordinary skill in the art would have been motivated to do so because it would provide 
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secure communications in a broadband communication system as taught by Kung (col. 
1, lines 12-13). 

Regarding on Claim 12, Barkan and Kung disclose the limitations as discussed in 
Claim 1 1 above wherein said second gateway controller comprises: 

a second key creation module configured to generate a secret key for distribution 
to both said first cable telephony adapter and said second cable telephony adapter for 
use in encrypted communications between said first cable telephony adapter and said 
second cable telephony adapter (col. 8, lines 30-35 and Abstract, lines 1-5). 

Regarding on Claim 13, Barkan and Kung disclose the limitations as discussed in 
Claim 1 1 above wherein said first gateway controller further comprises: 

a message processor configured to receive an encrypted message from said first 
cable telephony adapter intended for decryption by said second cable telephony 
adapter and further configured to forward said encrypted message to said second 
gateway controller without decrypting said encrypted message (col. 7, lines 51-54 and 
col. 14, lines 15-30). 

Regarding on Claim 14, Barkan and Kung disclose the limitations as discussed in 
Claim 7 above. Barkan further discloses wherein said key creation module is configured 
to intermittently generate a second secret key and to distribute said second secret key 
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to said first cable telephony adapter and said second cable telephony adapter so as to 
replace said previously generated secret key (col. 7, lines 45-59 and col. 8, lines 1-40). 

Regarding on Claim 15, Barkan discloses a method of establishing secure 
communications between a first cable telephony adapter and a second cable telephony 
adapter in a system in which secure communications do not previously exist between 
said first cable telephony adapter and said second cable telephony adapter, wherein 
said first cable telephony adapter is coupled with a first gateway controller, said second 
cable telephony adapter is coupled with a second gateway controller, and a network is 
coupled with said first gateway controller and said second gateway controller (Fig. 1), 
said method comprising: 

receiving at said first gateway controller (key distribution center 11) a request 
from said first cable telephony adapter to establish communications between said first 
cable telephony adapter (facility 1 key management device) and said second cable 
telephony adapter (facility 3 key management device) (Fig. 1, col. 6, lines 38-40); 

Barkan does not disclose "generating a secret key at said first gateway controller; 
distributing said secret key from said first gateway controller to said first cable telephony 
adapter." 

However, Kung explicitly discloses generating a secret key (encryption key/key 
1) at the first gateway controller (Figure 2, element 218 and Figure 7, element 706, col. 
33, lines 9-12) and distributing said secret key from said first gateway controller to said 
first cable telephony adapter (Figure 7, elements 705 and 708/707) over previously 
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established secure connections (encryption key(s) provide by the CM(s) 218 to the 
BRG(s) 300) (col. 33, lines 5-10). 

Therefore, it would have been obvious to one of ordinary skill in the art at the 
time the invention was made to have combined Kung's invention with Barkan to include 
generating a secret key at said first gateway controller and distributing said secret key 
from said first gateway controller to said first cable telephony adapter. One of ordinary 
skill in the art would have been motivated to do so because it would provide secure 
communications in a broadband communication system as taught by Kung (col. 1, lines 
12-13). 

Barkan and Kung disclose the limitations of claims 15 above. Kung further 
discloses distributing said secret key to said second gateway controller via a secure 
communication (Figure 7, elements 705 and 708/707) (col. 33, lines 1-17); distributing 
said secret key from said second gateway controller to said second cable telephony 
adapter (Figure 7, elements 705 and 708/707) (col.- 33, lines 1-17). 

Regarding on Claim 16, Barkan and v disclose the limitations as discussed in 
Claim 15 above. Barkan further discloses encrypting a message at said first cable 
telephony adapter with said secret key (col. 6, lines 30-35); sending said encrypted 
message to said first gateway controller (col. 9, lines 45-50); receiving said encrypted 
message at said first gateway controller (col. 6, lines 25-40); forwarding said encrypted 
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message from said first gateway controller to said second gateway controller without 
decrypting said encrypted message (col. 10, lines 45-55). 

Regarding on Claim 17, Barkan and Kung disclose the limitations as discussed in 
Claim 15 above. Barkan further discloses receiving said encrypted message at said 
second gateway controller (col. 10, lines 45-50); forwarding said encrypted message 
from said second gateway controller to said second cable telephony adapter without 
decrypting said message (col. 10, lines 35-55); decrypting said encrypted message at 
said second cable telephony adapter (col. 15, lines 17-20). 

Regarding on Claim 18, Barkan and Kung disclose the limitations as discussed in 
Claim 15 above. Barkan further discloses encrypting a message at said first cable 
telephony adapter with said secret key (col. 6, lines 30-35); sending said encrypted 
message to said first gateway controller (col. 9, lines 45-50); receiving said encrypted 
message at said first gateway controller (col. 6, lines 25-40); routing said encrypted 
message from said first gateway controller to said second cable telephony adapter (col. 
12, lines 5-15). 

Regarding on Claim 19, Barkan and Kung disclose the limitations as discussed in 
Claim 15 above. Barkan further discloses receiving said encrypted message at said 
second cable telephony adapter (col. 15, lines 15-17); decrypting said encrypted 
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message at said second cable telephony adapter with said secret key (col. 15, lines 17- 
20). 

4. Claims 5 and 10 are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Barkan and Kung as applied to claims 1 and 7 above, and further in view of Ganesan 
(U.S. Patent 5,535,276) herein referred to as Ganesan. 

Regarding on Claim 5, Barkan and Kung disclose the limitations as discussed in 
Claim 1 above. Barkan and Kung do not disclose "receiving a request at the first 
gateway controller to provide the secret key to a law enforcement server; and providing 
the secret key to the law enforcement server." 

However, Ganesan discloses receiving a request at the first gateway controller to 
provide the secret key to a law enforcement server; and providing the secret key to the 
law enforcement server (Fig. 2, col. 17, lines 25-40). 

Therefore, it would have been obvious to one of ordinary skill in the art at the 
time the invention was made to have incorporated Ganesan's invention with Barkan and 
Kung to provide the secret key to a law enforcement server with the motivation to allow 
the government access to messages. 

Regarding on Claim 10, Barkan and Kung disclose the limitations as discussed in 
Claim 7 above. Barkan further discloses wherein the key storage module has logic to 
encrypt the secret key before storage (col. 10, lines 20-25), but Barkan and Kung 
explicitly do not disclose using a public/private key pair belonging to law enforcement. 
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However, Ganesan discloses using a public/private key pair belonging to law 
enforcement (col. 9, lines 40-55). 

Therefore, it would have been obvious to one of ordinary skill in the art at the 
time the invention was made to have modified Ganesan's invention with Barkan and 
Kung to use a public/private key pair belonging to law enforcement with the motivation 
to allow the law enforcement to check on communications between users. 

Information Contact 

5. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Baotran N. To whose telephone number is 571-272- 
8156. The examiner can normally be reached on Monday-Friday from 8:00 to 4:30. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Kim Y. Vu can be reached on 571-272-3859. The fax phone number for the 
organization where this application or proceeding is assigned is 703-872-9306. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). / 



